Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump cross-spawn, @wdio/cli, appium, @wdio/appium-service, @wdio/local-runner, @wdio/spec-reporter and wdio-chromedriver-service in /example/e2e #232

Closed
wants to merge 1 commit into from
Closed

Bump cross-spawn, @wdio/cli, appium, @wdio/appium-service, @wdio/local-runner, @wdio/spec-reporter and wdio-chromedriver-service in /example/e2e #232

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 16, 2024
edited
Loading

Bumps cross-spawn to 7.0.5 and updates ancestor dependencies cross-spawn, @wdio/cli, appium, @wdio/appium-service, @wdio/local-runner, @wdio/spec-reporter and wdio-chromedriver-service. These dependencies need to be updated together.

Updates cross-spawn from 4.0.2 to 7.0.5

Changelog

Sourced from cross-spawn's changelog.

7.0.5 (2024-11-07)

Bug Fixes

  • fix escaping bug introduced by backtracking (640d391)

7.0.4 (2024-11-07)

Bug Fixes

7.0.3 (2020-05-25)

Bug Fixes

  • detect path key based on correct environment (#133) (159e7e9)

7.0.2 (2020-04-04)

Bug Fixes

  • fix worker threads in Node >=11.10.0 (#132) (6c5b4f0)

7.0.1 (2019-10-07)

Bug Fixes

7.0.0 (2019-09-03)

⚠ BREAKING CHANGES

  • drop support for Node.js < 8

  • drop support for versions below Node.js 8 (#125) (16feb53)

6.0.5 (2018-03-02)

Bug Fixes

... (truncated)

Commits
  • 0852683 chore(release): 7.0.5
  • 640d391 fix: fix escaping bug introduced by backtracking
  • bff0c87 chore: remove codecov
  • a7c6abc chore: replace travis with github workflows
  • 9b9246e chore(release): 7.0.4
  • 5ff3a07 fix: disable regexp backtracking (#160)
  • 9521e2d chore: fix tests in recent node js versions
  • 97ded39 chore: convert package lock
  • d52b6b9 chore: remove unused argument (#156)
  • 5d84384 chore: add travis jobs on ppc64le (#142)
  • Additional commits viewable in compare view

Updates @wdio/cli from 7.7.3 to 9.2.14

Release notes

Sourced from @​wdio/cli's releases.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.13

No updates!

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Changelog

Sourced from @​wdio/cli's changelog.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Commits

Updates appium from 1.21.0 to 2.12.1

Release notes

Sourced from appium's releases.

[email protected]

2.12.1 (2024-10-24)

Bug Fixes

[email protected]

2.12.0 (2024-10-15)

Features

  • appium: Make server graceful shutdown timeout configurable via command line args (#20641) (5661888)

Bug Fixes

  • appium: update dependency winston to v3.15.0 (ab12235)
  • docutils: support Python 3.12+ (#20666) (8d7cec9)
  • docutils: update dependency yaml to v2.6.0 (ed6c6dd)
  • execute-driver-plugin: update dependency webdriverio to v8.40.6 (796ca9f)

[email protected]

2.11.5 (2024-09-26)

Bug Fixes

  • appium: Return hostname as web socket url for BiDi if a broadcast address is assigned to the server (#20603) (f0de55d)

[email protected]

2.11.4 (2024-09-16)

Bug Fixes

  • appium: Fix the condition for secure websocket (#20497) (efdb1ce)
  • appium: update dependency @​sidvind/better-ajv-errors to v3 (#20552) (0ee7716)
  • appium: update dependency winston to v3.14.2 (#20465) (893fc04)
  • base-driver: Add a server flag to check if it operates a secure protocol (#20449) (622b245)
  • docutils: update dependency yaml to v2.5.1 (750872a)
  • execute-driver-plugin: update dependency webdriverio to v8.40.3 (4608563)
  • execute-driver-plugin: update dependency webdriverio to v8.40.5 (dcb6de2)
  • support: update dependency axios to v1.7.4 (d17d022)
  • support: update dependency axios to v1.7.5 (fedabb1)
  • support: update dependency axios to v1.7.7 (7fe67a2)
  • types: update dependency type-fest to v4 (#20467) (482a1f7)

... (truncated)

Changelog

Sourced from appium's changelog.

2.12.1 (2024-10-24)

Bug Fixes

2.12.0 (2024-10-15)

Features

  • appium: Make server graceful shutdown timeout configurable via command line args (#20641) (5661888)

Bug Fixes

  • appium: update dependency winston to v3.15.0 (ab12235)
  • docutils: support Python 3.12+ (#20666) (8d7cec9)
  • docutils: update dependency yaml to v2.6.0 (ed6c6dd)
  • execute-driver-plugin: update dependency webdriverio to v8.40.6 (796ca9f)

2.11.5 (2024-09-26)

Bug Fixes

  • appium: Return hostname as web socket url for BiDi if a broadcast address is assigned to the server (#20603) (f0de55d)

2.11.4 (2024-09-16)

Bug Fixes

  • appium: Fix the condition for secure websocket (#20497) (efdb1ce)
  • appium: update dependency @​sidvind/better-ajv-errors to v3 (#20552) (0ee7716)
  • appium: update dependency winston to v3.14.2 (#20465) (893fc04)
  • base-driver: Add a server flag to check if it operates a secure protocol (#20449) (622b245)
  • docutils: update dependency yaml to v2.5.1 (750872a)
  • execute-driver-plugin: update dependency webdriverio to v8.40.3 (4608563)
  • execute-driver-plugin: update dependency webdriverio to v8.40.5 (dcb6de2)
  • support: update dependency axios to v1.7.4 (d17d022)
  • support: update dependency axios to v1.7.5 (fedabb1)

... (truncated)

Commits

Updates @wdio/appium-service from 7.33.0 to 9.2.14

Release notes

Sourced from @​wdio/appium-service's releases.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.13

No updates!

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Changelog

Sourced from @​wdio/appium-service's changelog.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Commits

Updates @wdio/local-runner from 7.7.3 to 9.2.15

Release notes

Sourced from @​wdio/local-runner's releases.

v9.2.15 (2024-11-14)

💅 Polish

  • wdio-runner
    • #13878 fix(@​wdio/runner): Respect excludes in capabilities in multiremote case. (@​damencho)

Committers: 1

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.13

No updates!

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

... (truncated)

Changelog

Sourced from @​wdio/local-runner's changelog.

v9.2.15 (2024-11-14)

💅 Polish

  • wdio-runner
    • #13878 fix(@​wdio/runner): Respect excludes in capabilities in multiremote case. (@​damencho)

Committers: 1

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

... (truncated)

Commits

Updates @wdio/spec-reporter from 7.7.3 to 9.2.14

Release notes

Sourced from @​wdio/spec-reporter's releases.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.13

No updates!

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Changelog

Sourced from @​wdio/spec-reporter's changelog.

v9.2.14 (2024-11-14)

🚀 New Feature

💅 Polish

  • wdio-cucumber-framework, wdio-reporter, wdio-spec-reporter

Committers: 2

v9.2.12 (2024-11-11)

🐛 Bug Fix

💅 Polish

Committers: 1

v9.2.11 (2024-11-07)

🐛 Bug Fix

  • webdriverio
    • #13863 fix(webdriverio): properly handle unresolved element on switchFrame input in non-BIDI scenario (@​gavvvr)
    • #13857 fix(webdriverio): switchWindow supports exact window handle match (@​jan-molak)
  • wdio-browserstack-service

💅 Polish

📝 Documentation

... (truncated)

Commits

Updates wdio-chromedriver-service from 7.1.0 to 8.1.1

Release notes

Sourced from wdio-chromedriver-service's releases.

Release 8.1.1

  • don't pollute wdio caps with chromedriver options - fixes #202 (34e2be7)
  • Bump @​typescript-eslint/parser from 5.51.0 to 5.52.0 (#201) (fcc9f36)
  • Bump @​typescript-eslint/eslint-plugin from 5.51.0 to 5.52.0 (#200) (ed7d009)
  • Bump chromedriver from 109.0.0 to 110.0.0 (#199) (54bbcdb)
  • Bump @​wdio/globals from 8.3.3 to 8.3.5 (#198) (87027bd)
  • Bump vitest from 0.28.4 to 0.28.5 (#197) (65e090e)
  • Bump eslint from 8.33.0 to 8.34.0 (#196) (d649fd0)
  • Bump @​types/node from 18.11.19 to 18.13.0 (#195) (5b232fd)

Release 8.1.0

  • Add pollTimeout to options (#193) (2c738d3)
  • Bump cacheable-request from 10.2.5 to 10.2.7 (#194) (8d14f98)
  • Bump @​wdio/globals from 8.3.2 to 8.3.3 (#191) (6a8a4f0)
  • Bump @​typescript-eslint/eslint-plugin from 5.49.0 to 5.51.0 (#189) (e937a6d)
  • Bump typescript from 4.9.4 to 4.9.5 (#190) (6ccf2c1)
  • Bump @​types/node from 18.11.18 to 18.11.19 (#188) (8503f28)
  • Bump @​typescript-eslint/parser from 5.49.0 to 5.51.0 (#187) (4c1f6be)
  • Bump vitest from 0.28.3 to 0.28.4 (#186) (f469e01)
  • Bump http-cache-semantics from 4.1.0 to 4.1.1 (#185) (b11185f)
  • Bump eslint from 8.32.0 to 8.33.0 (#184) (67ae56c)
  • Bump vitest from 0.28.1 to 0.28.3 (#183) (dc36916)
  • Bump @​wdio/globals from 8.2.1 to 8.3.2 (#182) (172dd8f)
  • Bump rimraf from 4.1.1 to 4.1.2 (#181) (634307f)
  • update auto merge pipeline (88d65df)
  • update deps (fee463f)
  • update deps (67b3a05)
  • update deps (821dc40)
  • update deps (8c7d9bb)
  • update deps (4348179)
  • fix(doc): updated readme.md file with correct WDIO installation page URL (#145) (82e97d7)
  • Bump <...

    Description has been truncated

@dependabot
Bump cross-spawn, @wdio/cli, appium, @wdio/appium-service, @wdio/loca…
eee527a 
…l-runner, @wdio/spec-reporter and wdio-chromedriver-service

Bumps [cross-spawn](https://github.com/moxystudio/node-cross-spawn) to 7.0.5 and updates ancestor dependencies [cross-spawn](https://github.com/moxystudio/node-cross-spawn), [@wdio/cli](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-cli), [appium](https://github.com/appium/appium/tree/HEAD/packages/appium), [@wdio/appium-service](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-appium-service), [@wdio/local-runner](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-local-runner), [@wdio/spec-reporter](https://github.com/webdriverio/webdriverio/tree/HEAD/packages/wdio-spec-reporter) and [wdio-chromedriver-service](https://github.com/webdriverio-community/wdio-chromedriver-service). These dependencies need to be updated together.


Updates `cross-spawn` from 4.0.2 to 7.0.5
- [Changelog](https://github.com/moxystudio/node-cross-spawn/blob/master/CHANGELOG.md)
- [Commits](moxystudio/node-cross-spawn@4.0.2...v7.0.5)

Updates `@wdio/cli` from 7.7.3 to 9.2.14
- [Release notes](https://github.com/webdriverio/webdriverio/releases)
- [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webdriverio/webdriverio/commits/v9.2.14/packages/wdio-cli)

Updates `appium` from 1.21.0 to 2.12.1
- [Release notes](https://github.com/appium/appium/releases)
- [Changelog](https://github.com/appium/appium/blob/master/packages/appium/CHANGELOG.md)
- [Commits](https://github.com/appium/appium/commits/[email protected]/packages/appium)

Updates `@wdio/appium-service` from 7.33.0 to 9.2.14
- [Release notes](https://github.com/webdriverio/webdriverio/releases)
- [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webdriverio/webdriverio/commits/v9.2.14/packages/wdio-appium-service)

Updates `@wdio/local-runner` from 7.7.3 to 9.2.15
- [Release notes](https://github.com/webdriverio/webdriverio/releases)
- [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webdriverio/webdriverio/commits/v9.2.15/packages/wdio-local-runner)

Updates `@wdio/spec-reporter` from 7.7.3 to 9.2.14
- [Release notes](https://github.com/webdriverio/webdriverio/releases)
- [Changelog](https://github.com/webdriverio/webdriverio/blob/main/CHANGELOG.md)
- [Commits](https://github.com/webdriverio/webdriverio/commits/v9.2.14/packages/wdio-spec-reporter)

Updates `wdio-chromedriver-service` from 7.1.0 to 8.1.1
- [Release notes](https://github.com/webdriverio-community/wdio-chromedriver-service/releases)
- [Commits](webdriverio-community/wdio-chromedriver-service@v7.1.0...v8.1.1)

---
updated-dependencies:
- dependency-name: cross-spawn
  dependency-type: indirect
- dependency-name: "@wdio/cli"
  dependency-type: direct:production
- dependency-name: appium
  dependency-type: direct:production
- dependency-name: "@wdio/appium-service"
  dependency-type: direct:development
- dependency-name: "@wdio/local-runner"
  dependency-type: direct:development
- dependency-name: "@wdio/spec-reporter"
  dependency-type: direct:development
- dependency-name: wdio-chromedriver-service
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 16, 2024
@github-management-service
Copy link

It looks like you are reviewing a Dependabot upgrade PR! 🛠️
That’s great! Keeping our packages up to date to fix security issues in our stack is super important. Team Application Security wants to help make this process as easy and low friction as possible while still moving at pace.

We aim to merge Dependabot PRs within the below timeframes. The objectives are based on the severity of the security vulnerability we are mitigating with the upgrade:

Severity Target Merge (days)
CRITICAL 7 days
HIGH 14 days
MEDIUM 30 days
LOW 90 days

🎯 Target merge date for this PR: 30/11/2024 🎯

FAQ

What if we aren’t vulnerable to this particular CVE? Do we still have to upgrade the package? It’s still a good idea to upgrade the package if we can. With new code patterns and paths being introduced every day, we have no guarantee that we won’t later make ourselves vulnerable. Keeping packages up to date as a matter of due course is also good hygiene.
What if we’re not vulnerable and upgrading is going to be a lot of work? In these cases it’s a good idea to list out the steps you took to confirm we are not vulnerable in this PR. The PR can then be closed and the corresponding Dependabot Alert should be dismissed with the triage steps included as a comment. Please get in touch with Team Application Security via #ask-security before dismissing any CRITICAL alerts.
This is a major version upgrade that requires substantial code refactoring. What should I do? If the upgrade requires substantial refactoring then it is possible that we will miss the objectives we have outlined above. In these cases, you should add the dependabot-refactor-required label to this PR and ping #ask-security for further advice.

@github-management-service github-management-service requested a review from a team November 16, 2024 05:07
@github-management-service
Copy link

No corresponding Security Alert was found for this PR. Closing.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 28, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 28, 2024
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/example/e2e/multi-b27fd9256d branch November 28, 2024 11:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
alert-severity-HIGH dependabot-no-alert dependabot-semver-unknown dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code team-messenger
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@github-management-service